php-pro
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempt to bypass safety guidelines, override system rules, or extract system prompts.
- [Data Exposure & Exfiltration] (SAFE): No access to sensitive file paths, hardcoded credentials, or unauthorized network operations were found.
- [External Downloads & RCE] (SAFE): The skill explicitly prefers the PHP standard library and does not include any commands to download or execute remote scripts.
- [Indirect Prompt Injection] (LOW): The skill is designed to process user requests for code generation. While it lacks explicit boundary markers for untrusted data, it possesses no dangerous capabilities such as file-system modification or network egress that would elevate the risk.
- [Obfuscation] (SAFE): No Base64, zero-width characters, homoglyphs, or other encoding techniques were used to hide malicious content.
Audit Metadata